Scan data for secrets
Jenkins
5min
open source feature this feature is available in both trufflehog open source and trufflehog enterprise! beta feature beta features are in development they may contain bugs the jenkins scanning integration scans the jenkins build logs for credentials configuration web configuration you can configure this integration via the web ui through the integrations tab or you can use a local configuration file as outlined below local configuration access token sources \ connection '@type' type googleapis com/sources jenkins basicauth password xxxxxxxxxxxxxxxxxxxxxxxxxx username scanner account endpoint https //jenkins example com name jenkins logs scanperiod 12h type source type jenkins verify true unauthenticated sources \ connection '@type' type googleapis com/sources jenkins unauthenticated {} endpoint https //jenkins example com name jenkins logs scanperiod 12h type source type jenkins verify true options key description required endpoint the uri reference to jenkins server yes insecureskipverifytls whether to skip verifying tls on the jenkins server setting this to true may pose security issues no capabilities feature supported scan build logs ✅ scan artifacts ❌ scan base64 encoded data ✅ auto resume ✅